Overview

overview

8

Static

static

6

VirusShare...72.apk

android-9-x86

8

VirusShare...72.apk

android-10-x64

8

VirusShare...72.apk

android-11-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    VirusShare_f56079b95e34a175d880524b1b531272

  • Size

    186KB

  • Sample

    240610-md97asgd53

  • MD5

    f56079b95e34a175d880524b1b531272

  • SHA1

    2fed6dd974a6a6f26213f4b5d047081bbb8974ae

  • SHA256

    002419b9823810ed04ebb0d3b1c3c8b1e296e0ab0526c384183f1423eab0cf77

  • SHA512

    fe8ee07c1a8aa821692c656cb7d83eecd0db5842ba75a78e735a39d99dad9865a646643c7593d34a585d0bd9c276f2a68e5e7c585b65a7baadf1ed796dd57a7f

  • SSDEEP

    3072:TTsXscIe3QLUdRHaZ+b2p3q7Yc1stdOGQRX9SW21JtmwUdsdriJ4rRXEEvqcSekn:TTSKUdR6ZL3q/6oGQRcrgVderLuEvN5G

Score
8/10
androidcollectiondiscoveryevasionpersistencestealthtrojan

Malware Config

Targets

    • Target

      VirusShare_f56079b95e34a175d880524b1b531272

    • Size

      186KB

    • MD5

      f56079b95e34a175d880524b1b531272

    • SHA1

      2fed6dd974a6a6f26213f4b5d047081bbb8974ae

    • SHA256

      002419b9823810ed04ebb0d3b1c3c8b1e296e0ab0526c384183f1423eab0cf77

    • SHA512

      fe8ee07c1a8aa821692c656cb7d83eecd0db5842ba75a78e735a39d99dad9865a646643c7593d34a585d0bd9c276f2a68e5e7c585b65a7baadf1ed796dd57a7f

    • SSDEEP

      3072:TTsXscIe3QLUdRHaZ+b2p3q7Yc1stdOGQRX9SW21JtmwUdsdriJ4rRXEEvqcSekn:TTSKUdR6ZL3q/6oGQRcrgVderLuEvN5G

    Score
    8/10
    collectiondiscoveryevasionpersistencestealthtrojan

    • Removes its main activity from the application launcher

      stealthtrojanevasion

    • Queries the phone number (MSISDN for GSM devices)

      discovery

    • Reads the contacts stored on the device.

      collection

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Queries information about active data network

      discovery

    • Queries the unique device ID (IMEI, MEID, IMSI)

      discovery

    • Reads information about phone network operator.

      discovery
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks